Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2729

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-2729
Last Modified 16 Mar 2014 12:15:33
Published 15 Aug 2011 05:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-2729

Summary

native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on Linux, does not drop capabilities, which allows remote attackers to bypass read permissions for files via a request to an application.

Vulnerable Systems

Application

  • Apache Commons Daemon 1.0.3

  • Apache Commons Daemon 1.0.4

  • Apache Commons Daemon 1.0.5

  • Apache Commons Daemon 1.0.6

  • Apache Tomcat 5.5.32

  • Apache Tomcat 5.5.33

  • Apache Tomcat 6.0.30

  • Apache Tomcat 6.0.31

  • Apache Tomcat 6.0.32

  • Apache Tomcat 7.0.0

  • Apache Tomcat 7.0.1

  • Apache Tomcat 7.0.10

  • Apache Tomcat 7.0.11

  • Apache Tomcat 7.0.12

  • Apache Tomcat 7.0.13

  • Apache Tomcat 7.0.14

  • Apache Tomcat 7.0.16

  • Apache Tomcat 7.0.17

  • Apache Tomcat 7.0.19

  • Apache Tomcat 7.0.2

  • Apache Tomcat 7.0.3

  • Apache Tomcat 7.0.4

  • Apache Tomcat 7.0.5

  • Apache Tomcat 7.0.6

  • Apache Tomcat 7.0.7

  • Apache Tomcat 7.0.8

  • Apache Tomcat 7.0.9


References

CONFIRM - https://issues.apache.org/jira/browse/DAEMON-214

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=730400

XF - tomcat-jsvc-info-disclosure(69161)

BID - 49143

BUGTRAQ - 20110812 [SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat)

REDHAT - RHSA-2011:1292

REDHAT - RHSA-2011:1291

CONFIRM - http://tomcat.apache.org/security-7.html

CONFIRM - http://tomcat.apache.org/security-6.html

CONFIRM - http://tomcat.apache.org/security-5.html

CONFIRM - http://svn.apache.org/viewvc?view=revision&revision=1153824

CONFIRM - http://svn.apache.org/viewvc?view=revision&revision=1153379

CONFIRM - http://svn.apache.org/viewvc?view=revision&revision=1152701

SECTRACK - 1025925

SECUNIA - 46030

CONFIRM - http://people.apache.org/~markt/patches/2011-08-12-cve2011-2729-tc5.patch

MLIST - [tomcat-announce] 20110812 [SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat)

MLIST - [commons-dev] 20110812 [AANNOUNCE] Apache Commons Daemon 1.0.7 released

SUSE - openSUSE-SU-2011:1062

HP - HPSBUX02725

HP - SSRT100627

HP - SSRT101146

HP - HPSBUX02860

HP - HPSBST02955

SECUNIA - 57126


Last Updated: 27 May 2016 10:57:21